CISA Adds CVE-2008-0015 to KEV Catalog Due to Active Exploitation

CISA Adds CVE-2008-0015 to KEV Catalog Due to Active Exploitation

First seen 18 Feb 2026, 12:23 UTC GbhackersCybersecuritynews 94% similarity 44.6

Article Content

Browse articles
ThreatCluster

CISA has added the long-standing Microsoft Windows vulnerability CVE-2008-0015 to its Known Exploited Vulnerabilities (KEV) catalog following evidence of active exploitation. This flaw, affecting the Windows Video ActiveX Control, allows for remote code execution (RCE) and poses a significant risk to users. The vulnerability was first disclosed in 2008 and has now been confirmed as actively exploited as of February 17, 2026.

ThreatCluster AI

Timeline

2009-07-07
CVE-2008-0015 published
2026-02-17
CVE-2008-0015 added to CISA KEV catalog due to active exploitation
2026-02-18
CISA announces addition of CVE-2008-0015 to KEV catalog

Community

Browse all →